Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2011-12-02	CVE-2011-4035	Cross-Site Scripting vulnerability in Schneider-Electric products Cross-site scripting (XSS) vulnerability in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network schneider-electric CWE-79	4.3
2011-12-02	CVE-2011-4033	Buffer Errors vulnerability in Schneider-Electric products Buffer overflow in the Steema TeeChart ActiveX control, as used in Schneider Electric Vijeo Historian 4.30 and earlier, CitectHistorian 4.30 and earlier, and CitectSCADAReports 4.10 and earlier, allows remote attackers to cause a denial of service via unspecified vectors. network schneider-electric CWE-119	4.3
2011-08-16	CVE-2011-3144	Cross-Site Scripting vulnerability in multiple products Cross-site scripting (XSS) vulnerability in Control Microsystems ClearSCADA 2005, 2007, and 2009 before R2.3 and R1.4, as used in SCX before 67 R4.5 and 68 R3.9, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network aveva schneider-electric CWE-79	4.3